Browse all 5 CVE security advisories affecting codebangers. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Codebangers develops software development tools primarily used for application testing and code analysis. Historically, their products have been associated with multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues. The organization has recorded five CVEs to date, with several critical RCE weaknesses allowing unauthorized system access. Their tools often require elevated privileges, increasing potential impact when vulnerabilities exist. While no major public security incidents have been documented, the consistent pattern of high-severity flaws in their testing platforms suggests significant security risks for organizations relying on these tools for code validation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-46513 | WordPress All in One Time Clock Lite plugin < 1.3.326 - Cross Site Request Forgery (CSRF) Vulnerability — All in One Time Clock LiteCWE-352 | 4.3 | Medium | 2025-04-24 |
| CVE-2022-44594 | WordPress All in One Time Clock Lite Plugin <= 1.3.320 is vulnerable to Cross Site Scripting (XSS) — All in One Time Clock LiteCWE-79 | 4.8 | Medium | 2023-04-23 |
This page lists every published CVE security advisory associated with codebangers. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.